Skip to content
Tech News
← Back to articles

Charter Communications data breach affects 4.9 million accounts

2026-05-29 | original
read original get Charter Communications Data Breach Kit → more articles
Why This Matters

The recent data breach at Charter Communications highlights the ongoing cybersecurity risks faced by large telecom providers, affecting millions of customers' personal information. While no sensitive personal or proprietary network data was confirmed stolen, the breach underscores the importance of robust security measures and vigilant employee training to prevent such incidents. This incident serves as a reminder for consumers and companies alike to prioritize data protection in an increasingly digital world.

Key Takeaways

The ShinyHunters extortion gang stole personal information from 4.9 million accounts after hacking the U.S. telecom giant Charter Communications in early April, according to data breach notification service Have I Been Pwned.

Charter has over 92,000 employees and provides internet, mobile, video, and voice services to more than 32 million customers and over 57 million homes in 41 states across the U.S. through its Spectrum brand.

The company confirmed the breach earlier this week, saying that the attackers did not steal sensitive personal customer information and that it had alerted authorities about the incident.

"No sensitive personal information (PI) or customer proprietary network information (CPNI) data was exfiltrated by the threat actor as a result of recent activity," Charter told BleepingComputer.

While Charter has yet to attribute the attack and has not shared further details, the ShinyHunters extortion gang claimed responsibility and told BleepingComputer that they breached the company's systems on April 1 in a voice phishing (vishing) attack that compromised an employee's Microsoft Entra account.

The threat actors claimed they used this access to steal 42 million records from the company's Salesforce instance, including consumer and business customer names, email addresses, physical addresses, phone numbers, phone types, plan information, support ticket data, and some CPNI data.

After the company refused to pay the ransom demanded by ShinyHunters to have the stolen data returned and destroyed, the cybercrime group leaked the documents stolen from Charter's Salesforce instance on their dark web leak site.

BleepingComputer reached out to Charter again about the extortion gang's claims that they also stole additional CPNI data but was referred back to the company's original statement.

Charter entry on ShinyHunters leak site (BleepingComputer)

Although Charter declined to share further details, including whether threat actors also exfiltrated CPNI data from its systems, Have I Been Pwned analyzed the leaked data and confirmed that the incident affected 4.9 million accounts, whose names, email addresses, job titles, phone numbers, and physical addresses were stolen.

... continue reading

Explore topics: charter communications shinyhunters microsoft entra salesforce data breach
Related:
5 best practices for migrating to a new CRM
California sues 23andMe over 2023 data breach that affected 7 million users
23andMe Sued by California Over Massive 2023 Data Breach
Jim Cramer says these 3 mistakes are keeping investors out of AI winners
California Attorney General sues 23andMe successor for 2023 data breach

© 2026 GoKawiil

About | Editorial Policy | Contact